Navigate

CCI-001358

CCI-001358 Definition

The organization establishes privileged user accounts in accordance with a role-based access scheme that organizes allowed information system access and privileges into roles.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed documents and implements a process to establish privileged user accounts in accordance with a role-based access scheme that organizes allowed information system access and privileges into roles.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines documented processes for privileged user account creation to ensure the organization being inspected/assessed establishes privileged user accounts in accordance with a role-based access scheme that organizes allowed information system access and privileges into roles.

Compelling Evidence

1.) Signed and dated documentation that lists the procedures and requirements for getting a privileged user account.

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-001358.

Control	Description
AC-2 (7)	The organization: AC-2 (7)(a): Establishes and administers privileged user accounts in accordance with a role-based access scheme that organizes allowed information system access and privileges into roles; AC-2 (7)(b): Monitors privileged role assignments; and AC-2 (7)(c): Takes [Assignment: organization-defined actions] when privileged role assignments are no longer appropriate.